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Amendments to the Claims ; 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims : 

Claims 1-14 (Cancelled) 

1 5. (Currently Amended) A process for the remote authentication of a user for 
local access to a local machine of a network having a remote server managed by an 
administrator, classification means for classilying information, axxd communication means 
for connecting the user and the administrator comprising: 

creating a challenge (D) capable of being transmitted by the communication 
means, the challenge including information a fir?it portion including at least one byte 
representing the type of challenge^ and a second portion including at least one bvtc 
representing v ersion information and alphanumeric characters, the type of challenge 
representing whether a network authentication has been performed; 

communicating the challenge (D) lo the administrator together wilh elements 
known by tlie user, via the communication means; 

perlbrming a first predetermined calculation by means of the server and obtaining 
a first response (RD) that is a function of at least one of the challenge (D) and of 
predetermined data; 

transmitting to the user by the admimstrator the first response (RD); 
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performing a second calculation by means of the local machine and obtaining a 
second response (RDl ) that is a function of at least one of the challenge (D) and of the 
predetermined data; and 

comparing the first response (RD) transniitted by the administrator to the second 
response (RDl) obtained by the local machine so as to authenticate the user and locally 
authorize connection of the user to the local machine based on the result of the 
comparison. 

16. (Previously Presented) A process according to claim 1 5, wherein the first 
predetennined calculation performed by the server comprises modifying, in accordance 
with a given algorithm, the challenge (D) and at least one of the following pieces of data: 

a. ) at least one piece of information issued by the classification means and known 
by the user, 

b. ) at least one secret shared between the server and the local machine, and 

c. ) at least one element communicated by the user. 

1 7, (Previously Presented) A process according to claim 1 5, wherein the 
second calculation performed by Ihe local machine comprises modifying, in accordance 
with a given algorithm, the challenge (D) and at least one of the following pieces of data: 

a, ) at least one secret shared between the server and the local machine^ and 

b. ) at least one element communicated by the user. 
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1 8. (Previously Presented) A process according to claini 1 6, wherein the 
second calculation performed by the local machine comprises modifying, in accordance 
with a given algorithm, the challenge (D) and at least one of the following pieces of data; 

a. ) at least one secret shared between the server and the local machine, and 

b, ) at least one element communicated by the user. 

1 9. (Previously Presented) A process according to claim 1 6, wherein said at 
least one shared secret is entered into the server and transi^itted to the local machine 
during a successful network authentication. 

20. (Previously Presented) A process according to cJaim 17, wherein said at 
least one shared secret is entered into the server and transmitted to the local machine 
during a successful network authentication. 

2 1 . (Previously Presented) A process according to claim 1 8, wherein said at 
least one shared secret is entered into the server and transmitted to' the local machine 
during a successful network authentication. 

22. (Currently Amended) A process according to claim 1 6, wherein said at 
least one shared secret or secrets , the case may be, arc modified by means of a 
modification key (C) that depends on the local machine, prior to being modified by the 
algorithm. 
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23. (Previously Presented) A process according to claim 22, wherein the 
modification key (C) comprises concatenating the secret or a combination of secrets 
existing in the form of a byte string called a Master Station Secret and of hashing the byte 
string obtained through concatenation by means of a calculation algorithm, to obtain a 
byte string called a Station Secret. 

24. (Previously Presented) A process according to claim 1 6, wherein said at 
least one shared secret or secrets are accompanied by a version number that is 
incremented each time the secret is modified. 

25. (Previously Presented) A process according to claim 17, wherein said at 
least one shared secret or secrets are accompanied by a version number that is 
incremented each time the secret is modified. 

26. (Previously Presented) A process according to claim 1 8, wherein said at 
least one shared secret or secrets are accompanied by a version number thai is 
incremented each time the secret is modified. 

27- (previously Presented) A process according to claim 1 5, wherein the 
challenge is constituted by a byte string. 

28, (Previously Presented) A process according to claim 1 6, wherein the 
challenge is constituted by a byte string. 
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29. (Currently Amended) A process for the remote authentication of a user for 
local access to a local machine of a networic having a remote server managed by an 
administrator, classification means for classifying information, and means for connecting 
the user and the administrator comprising; 

creating a challenge (D) capable of being transmitted by the communication 

means; 

communicating the challenge (D) to the administrator together with elements 
known by the user, via the communication means; 

performing a first predetermined calculation by means of the server and obtaining 
a first response (RD) that is a function of at least one of the challenge (D) and/or and of 
predetermined data; 

transmitting to the user by the administrator the first response (RD); 

performing a second calculation by means of the local machine and obtaining a 
second response (RDl ) that is a function of at least one of the challenge (D) and of the 
predetermined data; and 

comparing the first response (RD) transmitted by the administrator to the second 
response (RDl) obtained by the local machine so as to authenticate the user and locally 
authorize cormection of the user to the local machine based on the result of the 
comparison, 

wherein the first predetermined calculation performed by the server comprises 
modifying, in accordance with a given algorithm, the challenge (D) and at least one of the 
following pieces of data: 

at letast one piece of information issued by the classification means and known by 
the user, 
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al least one secret shared between the server and the local machine, and 
at least one element communicated by the user, and 

said at least one shared secret or secrets are accompanied by a version number that 
is incremented each time the secret is modified; and 
the challenge comprises; 

a first byte representing the type of challenge, the type of challenge indicating 
whether a network authentjcEition has been performed; 

second and third bytes representing the version number of the shared information; 

and 

random alphanumeric characters of the fourth to twelfth bytes, 

30, (Previously Presented) A process for the remote authentication of a user 
for local access to a local machine of a network having a remote server managed by an 
administrator, classilRcation means for classifying information, and means for connecting 
the user and the administrator comprising: 

creating a challenge (D) capable of being transmitted by the communication 

means; 

communicating the challenge (D) to the administrator together with elements 
known by the user, via the commimication means; 

performing a first predetermined calculation by means of the server and obtaining 
a first response (RD) that is a fiinction of at least one of the challenge (D) and of 
predetermined data; 

transmitting to the user the first response (RD); 
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performi ng a second calculation by means of tlie local machine and obtaining a 
second response (RDl) that is a fiinction of at least one of the challenge (D) and of the 
predetermined data; and 

comparing the first response (RD) transmitted by the administrator to the second 
response (RDl ) calculated by the local machine so as to authenticate the user and locally 
authorize connection of the user to the local machine based on the result of the 
comparison, wherein, 

the challenge comprises: 

a byte string, comprising: 

a first byte representing the type of challenge, the type of challenge indicating 
whether a network authentication has been performed; 

second and third bytes representing the version ntunber of the shared information; 

and 

random alphanumeric characters of the fourth to twelfth bytes. 

3 1 . (Previously Presented) A process according to claim 23, wherein the 
response (RD; RDl) is calculated by hashing, in accordance with a calculation algorithm, 
a character string comprising the concatenation in a predetermined order of the challenge, 
the character string resulting from the transformation by a calculation algorithm of the 
user's password, the Station Secret and the user's name. 



32. (Previously Presented) A process according to claim 15, wherein the 
response (RD; RDl) is calculated by hashing, in accordance with a calculation algorithm, 
a character string comprising the concatenation in a predetermined order of the challenge, 
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a fixed security key CC stored in the local machine and in the server, the name of the 
local machine, itnd the character string i-esulting from the transformation "by a calculation 
algorithm of the usej 's password and user name. 

33, ' (Previously Presented) A process according to claim 1 5, wherein the local 
connection authorized is temporary, the authorized duration of the local connection being 
configurable. 

34. (Previously Presented) A process according to claim 1 5, fiurthex 
comprising locally authenticating the user aftei" the user authenticated remotely is 
disconnected from the local machine, 

35. (Cancelled) 

36, (New) A computing system for the remote authentication of a user for 
local access to a local machine of a network having a remote server managed by an 
administralorj classification means for classifying information, and communication means 
for connecting the user and the administrator comprising: 

means tor creating a challenge (D) capable of being transmitted by the 
communication means, the challenge including a first portion including at least one byte 
representing the type of challenge, and a second portion including at least one byte 
representing version informfition and alphanumeric characters, the type of challenge 
representing whether a network authentication has been performed; 
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means for comiTianicating the challenge (D) to the administrator together with 
elements known by the user, via the cominunication means; 

means for perromning a first predetermined calculation by means of the server and 
obtaining a first response (RD) that is a function of at least one of the challenge (D) and 
of predetermined data; 

means for transmitting to the user by the administrator the first response (RD); 

means for performing a second calculation by means of the local machine and 
obtaining a second response (RDl ) that is a fundi on of at least one of the challenge (D) 
and of the predetermined data; and 

means for comparing the first response (RD) transmitted by the administrator to 
the second response (RDl) obtained by the local machine so as to authenticate the user 
and locally authorize connection of the user to the local machine based on the result of the 
comparison. 
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